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COVID-19 was first reported in China Wuhan and rapidly grown up to more 
than 58 countries based on the World Health Organization (WHO). Well ahead 
of any health emergency, the health care server has the ability to access these 
data via authorization and then s/he performs necessary actions. In order to 
protect medical data from malicious activities, authentication is the starting 
point for this. Authentication systems represent a network support factor to 
reduce ineffective users and radically eliminate phishing because 
authentication determines the identity of the real user. Many schemes and 
technologies have been suggested for authentication in wireless body area 
networks (WBANSs). In this paper, we suggest a strong dynamic password 
authentication system for WBANs. We adopt a (different/new) way to 
calculate a password and make it coherent and dynamic for each login session. 
Our work also provides additional security properties to get rid of hub node 
impersonation attacks and resolve key escrow issues. Our scheme resist fishing 


attach which keep patient from any illegal change of drugs. By comparison, 
the proposed scheme is considered active and has strong security based on 
formal security analysis tools such as AVISPA. 
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1. INTRODUCTION 

The World Health Organization (WHO) caught the first COVID-19 case in China Wuhan on the 
morning of 30 January 2020 [1]. From this date right the moment writing this paper the pandemic has spread 
to more than 75 countries (World Health Organization). The number of cases confirmed by corona virus was 
around 93000 offered the entire world by the end of February. This kind of disease is one of the most 
dangerous infectious due to the rapid spread and transmission of infection and because it not usually expected 
in a particular community geographical region, or time period. Therefore the world requires immediate action 
to prevent the pandemic at the community level [2], [3]. Information technology works hard to tackle this 
COVID-19 by developing several apps analyzing the patient data for pre prediction. The development in 
wireless communication technologies and information technology has affected all aspects of our daily life: 
scientific, social, health and industrial. In the era of innovative technology, cloud computing, internet of 
things (IoTs), and big data are available to people to benefit from their services and applications, for 
example, the need to go to the hospital and other medical care centers for regular medical examinations has 
diminished. Based on the medical care side, we note that there is advanced technology development in the 
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health sector; as patients who suffer from such chronic diseases as cardiac arrest, but at the same time are 

physically capable to move, do not need to lie in hospitals for continuous monitoring [4], [5]. As a result, there 

has been a noticeable decrease in hospitalization due to this tremendous development in the health sector. 

Moreover, e-health services have become mobile and hence called mobile health (mHealth). A wireless body 

area network (WBAN) is a network of small biometric sensors which can wearable or implanted inside the 

human body, these sensors are suitable for collect vital signals from the body and connect with the personal 
device (smart mobile/PC) that responsible for interpreting the sensors’ signals and transferring them to the 
authenticated server. 

In order to take advantage of wireless sensor networks to monitor and improve people's health 
conditions, WBAN has emerged. It is also useful for monitoring elderly people who have chronic conditions. 
WBAN has the ability to monitor and check vital signs (such as high body temperatures) of healthy people in 
order to get rid of symptoms of diseases and avoid them in the future. Currently, the rapid technological 
development of WBAN makes it possible for people to benefit from e-health services anywhere in the world 
at any time [6], [7]. This type of network consists of a number of small and economical medical sensors, 
which can be implanted into, worn on the human's body such as accessories, or installed inside clothes. The 
medical sensors are characterized by being devices that have limited capabilities in terms of storage space, 
computability and battery usage. The medical sensors are connected through such short-range wireless 
communication equipment as Bluetooth and ZigBee. These networks need accessory devices that work as a 
gate-way such as a mobile phone or personal digital assistant (PDA), which collect data from medical sensors 
and redirect this information to an authenticated server via the Internet remotely, where data processing and 
analysis occur with the help of applications' software. Figure 1 explains the main architecture of WBAN. 
Additionally, WBAN works in an efficient and comfortable way for users with a 24-hour monitoring and 
follow-up system. Moreover, it can have several other uses such as the remote monitoring of critical 
conditions in the hospital as well as monitoring the health conditions of athletes [8], [9]. 

Researchers and those interested in the WBAN network expect a big revolution in the field of health 
care because of the huge potential of these networks, but at the same time they point to the need to pay 
attention to the security of WBAN that sends large amounts of personal data. Therefore, it is necessary to 
fortify and secure sensitive biomedical data transferred between parts of the network and data previously 
referred to. Any security breaches, such as an unauthorized change in the dose of the drug, can have a 
negative effect or lead to the patient's death. Patients do not wish their personal data to be disclosed or 
misused. Therefore, the WBAN must prevent the eavesdropping on and leak of patient’s private information 
to neighboring networks. Authentication is an essential part of any network's security, and it also helps the 
network to reduce unwanted users and avoid many malicious security attacks on WBANSs. The authentication 
in WBAN is necessary to prevent unauthorized users from access the system. It depends on two-factor used 
multi- layer authentication; the first layer is related with sensors side and personal device while the second 
one goes inside personal device and authenticated server. As well as, there are many scheme based on mutual 
authentication between personal device and authenticated server. So, our proposed scheme depends on multi- 
layer and mutual authentication between main components. 

An attacker can eavesdrop on connections between network components. This eavesdropping can 
lead to a severe damage to the patient because the attacker can use the acquired data for various illegal 
purposes. Any hack of the health care system data will immediately affect the hosted patient life such us 
change the duration of drugs. Our main contributions to this paper are listed in the following points: 

— The proposed scheme is protected against malicious impersonation such as insider, replay, hub node 
spoofing, key escrow, the tracing, and meet-in-the-middle (MITM) attacks. Our work provides by 
strong mutual authentication among users, medicalsensors , and the authenticated server. 

— Our work has been validated by automated verification tool which is AVISP. These tools are used to ensure 
whether the exchanged information is honest, secure against well-known attacks such as eavesdropping. 

— Practical experience results show that our solution to our proposal is easy to use, has fast response times 
and works well for wireless IoT devices. 

— The current relevant approaches are compared with our proposed work and we have noticed that the 
proposed scheme has an advantage over theme in terms of computing cost, communication expenses, 
and numerous security tasks. 

— Our scheme supports dynamic password authentication, which is more secure than fixed password. Our 
authentication solution ensures the privacy of user identity and provides long-term private keys 
distributed by a trusted third party. 

— Providing multilayer authentication, first layer is providing mutual authentication between user and 
server, while the second layer providing a lightweight authentication scheme between sensor and user. 
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— In the field of health care, the method is designed to take care of patients with chronic diseases by 
observing them remotely without the need for hospitalization, and this results in reducing costs and 
improving the patient's health condition more quickly. 

— Within the COVID-19 pandemic, the proposed work contributes to the expectation of patients with 
chronic disease patients by measuring their temperature, which is within the scope of the COVID-19 
disease. Where the medical sensors send a signal to the personal device that interprets to expect this 
disease, and then it sends it to each of the patient's relatives and the medical care center to take the 
necessary measures. 

— Inthe practicalure side, the proposed work can apply in the several healthcare institutes such ICU room, 
recovery room, and chronic disease room. 

The paper is organized as follows: In section 2, we focus on relevant works. Section 3 explains the 
primitive tools used in the proposed scheme and briefly discusses the mathematical definitions required. In 
section 4, we afford an exhaustive description of the proposed work. In section 5, we analyses the security of 
the proposed scheme and evaluate the efficiency and security of our proposed scheme based on simulation 
tools and practical experience. In section 6, we conclude the paper. 
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Figure 1. Organization of WBAN 


2. RELATED WORKS 

In the past few years, many researchers have suggested methods that contribute to improving the 
security behavior of authentication schemes with a high level of implementing time. There are several major 
exchange schemes using hard cryptography issues are distinguished by high computation requirements and 
identity loss [10], [11]. Furthermore, some schemes suffer from resisting familiar malicious attacks such as 
insider and replay. 

Chatterjee et al. [12], presented an authentication scheme based on the ECC cryptography, which 
supports mutual authentication between the user, the base station, and the sensor. The scheme also allows 
adding a new node after the first design of the network. Lee et al. [13], suggested an efficient scheme for key 
management based on ECC cryptography to protect the patient’s health information. The researchers used the 
SIM card number of the patient as an identification number next to the private key. Eldefrawy et al. [14], 
suggested designing a protocol that supports adding new nodes and canceling nodes within the network. The 
proposed protocol based on RSA and diffie hellman ECC (DHECC) cryptosystems, and it provides security 
requirements. 

Toorani [15] concluded that IEEE 802.15.6 has serious security problems based on security analysis 
performed on these protocols. Mohit et al. [16] offer a mutual authentication protocol that maintains 
anonymity for mobile users, which achieves anonymity with a smaller balance. Although their work can 
withstand many attacks, but it is susceptible to personal information disclosure attacks. Wazid et al. [17] 
propose authentication scheme using smart card in WBAN, which depends on symmetric encryption of 
information transmission via communication channel. Their works fails to resist tracing attack, insider user 


Indonesian J Elec Eng & Comp Sci, Vol. 27, No. 2, August 2022: 900-910 


Indonesian J Elec Eng & Comp Sci ISSN: 2502-4752 Oo 903 


attack, and jamming attack. Ibrahim et al. [18] offer anonymous mutual authentication and a key agreement 
protocol based on simple cryptography alternatives like hash function and XOR process. However, it is 
suffered to resist malicious attacks such as jamming attack, hub node impersonation attack, and key escrow 
problem. Li et al. [19] presented mutual authentication protocol depending on low-entropy password. Their 
scheme can be applied to WBAN because it relies on an easy-to-remember password. Kompara et al. [20] 
suggested a mutual authentication scheme for a two-hop WBAN and an untraceable key establishing, with an 
emphasis on anonymity and a non-tracking feature. Liu et al. [21] proposed research paper for robust 
authentication scheme that depends on dynamic password and uses computation method to produce once 
password per login request. 

In this paper, the proposed scheme distinguishes in many good metrics such as the immune against 
malicious attacks and uses a homomorphic encryption (Damgård, Geisler and Krøigaard method (DGK)) [22] 
and crypto hash function. This scheme includes low computational and communication costs and paid more 
attention in patient’s healthcare compared to other related schemes. All of the previous researchers run their 
works but never consider the WBANs. We proposed new approach to tracking the patients any where any 
time no need to hosted them of special location (hospital). Our work pays more attention to keep the privacy 
of data transfer through the WBAN in duration of pandemic COVID-19. Our proposed work focuses on 
healthcare side and immunity against malicious attacks because the hackers can play bad role to change/ 
delay the transferred information of patients and then may be caused to death case. 


3. CRYPTOGRAPHIC PRELIMINARIES AND SECURITY ISSUES 
3.1. Damgård, geisler and krøigaard 

DGK considers is type of homomorphic encryption Yassin et al. [23] and Damgård et al. [22] and 
was suited to work with the small plaintexts spaces and generate shorter ciphertext size compared with 
associated probabilistic encryption methods. For more detail, the public key consists of main parameters 
(N, g, h, u) and while the parameters (p, q, Vp, Vq) are connected with the private key. So, N = p x q refers to 
the ciphertext modulus of k-bits, p and q are two large primes, u € Z,, denotes to the plaintext, it is a small 
prime divisor of both p — 1 and q — 1. The contents of u are very small values, usually it is selected as the 
minimal prime greater than f +2; where £ is number of bits in associated integers. The supplementary factors 
vpand v, contain t-bit prime and uv,|(p — 1) and uvg|(q — 1). Factors k, t, and ? must accept k > t > ?. 
Usually these values may be k=1024, t=160, and the range of £ from 8 to 32 bits. The items g, h € Zy where 
g has command of uvpvq and h has mater of vpvg. Looking at the message x €Zy, the result of encryption 
message [x] by DGK and it is computed as [x] = g*.h™ mod N , so the value of r is selected integer number 
in 2.5t-bits. DGK considers as additively homomorphic where[x].[y] = [x + y] mod N. The Impressive 
feature of DGK is that to detect whether x is zero and it is answer for verifying x”’P’4 mod N = 1. Moreover, 
since u < p it is even adequate to verify x”P’4 mod p = 1. 


3.2. Crypto hash function 

A cryptographic hash function takes an input such as text, numbers, file or a password and then 
produces a fixed-size string of bytes based on type of hash function (MD5, SHA-1). There are many names 
of string like message digest, checksum. The major utilize of this function is to validate the legitimacy of 
data. A hash function is a basic word that covers cryptographic hash functions along with other sorts of 
algorithms like cyclic redundancy checks Yassin et al. [23]. 


4. THE PROPOSED SCHEME 

The main four phases of our scheme are setup and registration phase, login phase, mutual 
authentication phase, and healthcare phase. As well as, the entities of WBAN are legal user/ patient ( P;), an 
authenticated server (AS), the personal device ( PD;), and medical sensors ( MS}, ... ... , MS,,); where n is the 
number of sensors. Finally, a new patient needs to add the major containing the details of the patient, his 
relatives, and his doctors, which should be registered on the AS. Table 1 defines the symbols and their 
meanings used in this paper. 


4.1. Setup and registration phase 
The generating main parameters related by healthcare center as follows (see Subsection (3.1)). The 


public key is known as (Np, gpp Ap,,Mp,) while the parameters (pp; qp; Vp» Va pd are connected with the 
private key. These keys are linked with each user (P;). Then, the healthcare center (HC) sends public and 


private keys to personal device (PD;) and trust server (AS), respectively. 
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Table 1. Common symbols used 


Symbol Description 
Np, Homorphic modulus. 
t Number of bits in compared integers. 

K The bit-length of N. 

Npp Ipp hpp Mp, Public key. 

(Pp, IP,» Upp Vap) Private Key. 
IDp;, PWp The identity of user (patient (P;)). 
AIDp;, APWp; User’s anonymity. 
HCR; Health Care Record of P;. 
AS Authenticated Server. 
HC Healthcare center is responsible for generating and distributing public and private keys to patients 
and authenticated server. 
MS Medical Sensor. 
IDus; PWus; The anonymity of MS. 
[mr], [Mmea]; Cp,» Co; Encryption messages by DGK homorphic. 


4.1.1. User registration 
User (P;) registers his main information in AS by performing the following steps: 

a) P; chooses his identity (JDp;) and password (PWp;) by using application attached on his personal 
device ( PD;). Also, P; records information about his doctor and relatives (health care record (HCR;)). 
HCR; includes phone numbers of doctors and relatives, Name of patient, Pathological case, and others. 

b) PD; chooses a random number, r; E Z Np? and computes the following anonymous parameters: 


AIDp; = h(IDp;l||r:) (1) 
APWp; = h(PWp;||7;) (2) 


c) PD; submits (AIDp;, APWp;) to AS. 
d) AS verifies its database to check if P; is previously registered. If so, AS terminates this phase. 
Otherwise, the AS adds a new patient’s record (AJDp;, APWp;) in the main secure database. 


4.1.2. MS; registration 

Based on the serial number (S€num,;) related to each medical sensor and each user (P;) has many 
medical sensors (MS1...MSm), the HC registers the MS; as follows: 
a) Calculate the identity of medical sensor (IDus;): 


IDus; > S€num; (S> JP; © hp, (3) 


b) Choose a password (PWus,) for medical sensors and then save and submit ( IDysj»PWus » Np» 9p) to 


MS; and PD;, respectivally. Finally, the parameters ( Dus; PWys,) saves inside health record of P;. 


4.2. The login, mutual authentication, health care phases 
4.2.1. Login and authentication, health care of medical sensor 
The medical sensor (MS;) is responsible for sending the examination signals to the personal device 

that determines the healthcare decision. Therefore, it is necessary to confirm the reliability of the sensor and 
according to the following: 
a) MS, generates integer random r; E Z Np, and computes PWus,, = PWus; Or, gr; 
b) MS; sends message M1( IDus; tis PWus,’) to PD;. 
c) After receiving the message M/ from MS;. The PD; performs the following processes to verify the 

identity of the sensor. 

— Retrieves the main information of MS; based on IDus and healthcare record of user (P;). 


— Compare PWus,. — PWus; r; ® gp, == 0; If the result is false then MS; is not authenticated 


and terminates this phase. Otherwise; PD; allows MS; to sends its measurements and starts in the 
health care phase. 
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In health care phase MS;. 
The MS; will send signals (Sg) to PD; at periodic intervals that depend on the measured health 


condition of the patient. The personal device will perform the following operations: 


a) 


b) 


c) 


Sending alert messages to the patient in the event that the received signal (Sg) exceeded the critical 
cases as shown in Figure 2. 


Figure 2. Health care phase in our proposed work 


After a period of patient unresponsiveness and the persistence of critical cases, the personal device will 
send the patient’s identity (IDp;) and geographical location (GL;) to AS. The authenticated server checks 
the authority of PD; at first time in the next phases and then AS sends health care record HCR; and GL; 
to make the appropriate health decision for the patient. Critical cases are determined by relying on the 
type of the sensor, for example temperatures when it exceeds 38 are dangerous and must be treated. 
Within the COVID-19 pandemic, PD; pays more attention for dealing with the signals (Sg) received 
from MS,, if Sg belongs to the critical cases of COVID-19 then PD; sends very urgent warning messages 
to the patient's relatives and the medical care canter as shown in Figure 3. 


The Patient 


Physician 


Pre Prediction of COVID-19 le 
Authentication Servera Ds Police Station 


Figure 3. COVID-19 process in our proposed work 


4.3. Login and authentication of personal device 


At the moment when the patient does not respond to the notifications of the personal device (PD;) 


that addresses the patient's relatives. Here you must achieve the following steps: 


a) 


b) 
c) 


PD; encrypts (AIDp;, APWp;) using DGK method; PD; selects an integer random r; € Zup, and 
separates APWp; into two equal portions (APWp;,APWp;2). Then, computes [mp,,] = 
g^PW?u. hp i mod Np, , [mp] = gp,*P 2. hp," mod Np,, and Cp, = [mp,, |. [mp,,]. 

PD, sends M2(AIDp;, Cp; 7;) to AS. 

After receiving the message (M2) from the patient's personal device (PD;), AS performs the following 

operations: 

— Check authority of PD; by restoring its identity AJDp;’ from server’s database and then compare 
AIDp; with AIDp;'. If the result is false, AS terminates phase. Otherwise, he applies an additively 
homomorphic property by computing Cp; = [mp,, + mp,,]mod Np, = [APWp;]modNp, = 
(gp i. hp, ' mod Np,)mod Np,. 
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— Compare Cpe with C,,,; if the values are not equal then AS finishes this process. Otherwise, AS 
computes Ch = Cy, Bp; and then sends Ch to PD,. 
d) PD; ensures from authority of AS by comparing Ch with C,,®gp, and then sends ( GL;, Sg) to AS. 
e) AS submits GL; and warring message to doctor and relatives of patient to take the appropriate health aid. 


5. SECURITY ANALYSIS AND EXPERIMENTAL RESULTS 
5.1. Informal analysis 

As mentioned in the creatine kinase (KC) threat model. Earlier publications over the last decade 
have shown in the related work section that a security proof suffers from an insufficient security model that 
fails to identify all of an attacker's true capabilities. Using the CK threat model, we show that the proposed 
system is safe in the following ways. 


5.1.1. Providing agreement and freshness of session key 

We notice the key agreement based on two folds. The first one is going in the side dialog between 
MS; and the PD;, the XOR operation plays a prominent role by creating the session key based on 
(PWus; Ipp") . On the side of PD; and AS, the transactions (gp, hp,r;) mainly manage the public key 
based on the basic criteria of the DGK encryption method. Furthermore, including the random number r; in 
the key management session in the login and authentication phases resulted in a key freshness feature. 


5.1.2. Providing anonymous and untraceable features 

Assume an attacker (A) has the ability to access messages exchanged among the basic components 
(MS;,PD;, AS). These messages (M1( IDus; fi PWys; ), M2(AIDp;,Cy,, 1%), Ch) are verified in a highly 
confidential and anomaly manner and without being disclosed. The anonymous identification parameters are 
generated once due to the use of the random number 7;. As a result, hiding the tracking of these messages 
causes the attacker to fail to achieve his goals by clearing and following the messages exchanged between the 
main components. 


5.1.3. Correctness 

— The fast authentication of MS; refers to correctness where IDus; fi PWas;' are calculated using 7;, 
gp;. Finally, the process of check the anonymous identity of the biometric sensor MS; is correct: 
PWus,' — PWys, Br O IP; = PWus, Br, ® GP; — PWys, BB 9p, =9 

— The correctness of fast authentication of PD; is proved as follows: 


Cpi = [mp]. [mp] 
= [mp,, + Mp,,|mod Np, 
= [APWp;|modNp, = (gp; "Pi hp mod Np,)mod Np, = Cp,’ 


— Inthe another side, also the fast mutual authentication from AS to PD; is correctness: 
A ' — 1 
Ch = Cy, Dgr, = Ch 
Finally, we notice the fast mutual authentication has verified between PD; and AS. 


5.1.4. Resistant to eavesdropping, MITM, traffic attacks, and intruder detection 

In this type of malicious attack, the attacker's function (A) is to monitor the messages exchanged 
between the main components (BS;, PD;, AS) of the communication environment and then extract information 
to carry out the attack. The messages exchanged between the main parties in the proposed work are immune 
from these attacks. The messages are as follows: 
a) MS; submits message M1( IDus)» Tis PWus,') to PD;. 
b) PD; replies message M2(AIDp;, Cp; ri) to AS. 
c) AS sends challenge Ch to PD;. 
The manipulation of the attacker will not work, as the messages above are used only once. Any modification 
of messages will help the system to identify the source of the manipulation and thus detect the identity of the 
intruder. 


H 
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5.1.5. Protected from a Forged MS; & PD; 
The attacker (A) fails to impersonate the medical sensor MS; and the personal device PD;. Because 
it does not have the security factors and keys (Senum; Ipi» hpp PWys;» AIDp;, APWp;, HCR;). That help him 


to build reliable and secure messages to the rest of the network. 


5.2. Simulation 

AVISPA explained as push-button tool which is the most recent techniques employed for examine 
the proposed schemes, protocols, and frameworks security by applied different kinds of attacks and find the 
final security weaknesses report. AVISPA protocol was implemented in the high-level protocol specification 
language (HLPSL). The selection criterion for mutants’ authentication is the positive correlation with 
common errors at the implementation level. HLPSL specification consist of basic role, working environment, 
and security goal and the details shows in Figures 4-6. 


role admin () 'n MPI1-= MOD(GP1_MB) 
AS.PD: agent, 'n MPI2:= MOD(GP2.MB) 
AID, APW, R .RW, GL EM, 'n CP:= SUM(MPI1, MPI2) 
APW1, APW2,MPI1, MPD. 'n M2:= SUMR, AIDp.CP) 
CP, M2, DE, CH 'n SNDQ@QV2).AS 
DGK, MOD, SUM, COMP. 2.State = RCVM2) => 
Homph SND, RCV 'n AIDp= request (SerDB) 
channel(dy)) 'n DE=COMP(AIDp”,AlDp) 
init State:= 0 n CP= Homph(AIDp”) 
transition ‘n SND(Ch).PD 
0.State = 0 ^n RCV(start) => 3.State = RCV(CH) => 
'n AID== new() in DE=COMP(CH.Cpi) 
n APW:= new nm SND(GL, Sg).AS 
nR= new() 4.State = RCV(GL, Sg) => 
nEM:= DGK (AID. APW) n RW= new() 
‘n APW1, APW2:= SPLT 'n SND(GL, RW:=).Dr 
(APW) End 


Figure 4. Specification of personal device (admin) role in HLPSL 
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GOAL GOAL 
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BACKEND BACKEND 
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Figure 5. Security verification result obtained using the AVISPA tool 


role ArhenServ O m CP= Homph(AIDp™) 
AS.PD: agent a SND(Ch) PD 
AIDp, R , RW, GL, CP, DE, CH 2.State = RCV(CH) => 
COMP, Homph, SND, RCV channel(dy)) n DE=COMP(CH,Cpi) 
init State— 0 n SND(GL, Sg). AS 


transition 3 State = RCV(GL,. Sg) => 
0.State = 0 ^n RCV R, AIDp.CP ) => m RW = newt) 

'n AIDp’= request (SerDB) a SND(GL. RW:=).Dr 

*n DE=COMP(AIDp“.AIDp) End 


Figure 6. Specification of authentication server (AS) role in HLPSL 


6. COMPARISON WITH PREVIOUS WORKS 

Table 2 explains main comparison between the proposed scheme and related works based on 
security metrics. Additionally, Table 3 shows a comparison of the computational cost between the most 
important previous methods and the current work, based on the scales in the following: 
— Ta  : The time allotted to the crypto hash function. 
— Tp  : The processing time for the fuzzy extractor operation. 
—  Tpec : The processing time for a symmetric decryption function. 
—  Tgnc : The processing time for a symmetric encryption function. 
— Tẹ : The processing time for the XOR operation. 

Depending on Kilinc et al. [24], the processing times for the basic functions are approximately as follows. 
Tn is 0.0023 ms, Tgn¢ is 0.0046 ms, Tpec is 0.0046 ms, Tp is 0.442 ms, and Tg and T are unnoticed due to its 
insignificant time Ibrahim et al. [18]. In terms of the communication cost of the login and authentication phases, 
we assume the value (128 bits) is related with each of the identity, password, and crypto hash function. The value 
of random number is one byte (8 bits). Both Table 3 and Table 4 are used to compare our scheme with others in 
computation and communication costs respectively. The computation time is computed based on a 32-bit 
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Cortex-M3 micro-controller at 72 MHz Wazid et al. (see Table). A 32-bit Cortex-M3 micro-controller Kompara 
et al. [20] running at 72 MHz executes a main process such as encryption, hash in 0.06 ms. 


Table 2. Security metrics comparison 


Security features Ibrahim et al. He and Wang Kompara et al. Ryu and Kim Alzahrani etal. Current 
[18] [11] [20] [25] [26] 
Mutual Authentication V y V y V y 
Anonymous & Untraceable V y V y V y 
Forward Secrecy V y V y V y 
Key Agreement V x x Vy V y 
Key Freshness x x x V y V 
MITM Attack y V y V y V 
Replay Attack y V y V y V 
Eavesdropping Attack y V V y x V 
Stolen Personal Device y V y V y V 
Forged Biometric Sensor y V y x x V 
Healthcare Phase x x x y x V 
COVID-19 x x x x x y 
Health Care x x x x x V 
Table 3. Computation cost in (ms) 
Scheme Registration phase Login & authentication phases Total cost 

Ibrahim er al. [18]. 2h titg 12T, +6 Ts 14T, +7 Te © 0.0322 

He and Wang [11] 97, +47;+ 2T;+To 12T +5Tp+ 9Tg +187; ne be 

Kompara et al. [20]. 17,+2Tg+1T, 8T,+13Tg +16T, 9T,+15Tg +17T, ~ 0.0207 

Ryu and Kim [25] 2T,+3Tg + 2T, 12T, +16Tg + 38T, 14T, +19Tg +407, = 0.0322 

Alzahrani et al. [26] 17, +2Tg 10T, + 14Tg 117,+16Tg 0.0253 

Our Scheme 2T, +27, 2 To +4 Tenc 2T, +2To+4Tenc +2T, ~ 0.0184 


Table 4. The communication cost in bit 
Communication link Damgård et al. [22] Somasundaram and Sivakumar [27] He & Wang [11] Our Scheme 


MS; > PD; 480 384 512 264 
PD; — AS 640 384 528 264 
AS — PD; 640 1,280 496 128 
PD; > MS; 480 384 480 3 
Total 2,240 2,432 2,016 563 


7. CONCLUSION 

In this paper, we present a strong authentication scheme with anonymous password to prevent any 
adversaries from attempting to eavesdrop on the data exchanged at the login or authentication stage for 
WBANSs. Our work pays more attention to make user’s password dynamic, anonymous, and trusted for each 
login request among components. The strong passwords are established to fight the personal information 
revelation attack excellently and much more securely compared with the static passwords. The proposed work 
also implements continuously restructured pseudo identities and needs the undisclosed key of WBAN, which is 
related with the secret key of user for withstanding tracing, replaying, MITM, insider, and Impersonate attacks. 
Based on performance and security analysis, we detect that our presented scheme can negotiate the resist numerous 
malicious attacks, support numerous applied supplementary phases, dynamic anonymous password, and strong 
secret key. The proposed scheme distinguishes low computation cost, communication cost compared to those for 
the relating scheme. A great effort is being made to deal with the signals received from the patient through the 
medical sensors, if they are within illness or critical cases, it will send very urgent warning messages to the 
patient's relatives and the medical care centre. For taking the initial checks before the case gets out of control. 
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